File: /home/puthuppa/public_html/news-add2.php.bak
<?php
require_once 'logcheck-admin.php';
$log = new LoggedIn();
$log -> logincheck();
require_once 'includes/toolBox.php';
$newstitle = preventInjuction('newstitle');
$description = preventInjuction('description');
$newfilename="";
$newbrochure="";
#uploading photo
$file_name = $_FILES["file"]["name"];
$file_size = $_FILES["file"]["size"];
$file_tmp = $_FILES["file"]["tmp_name"];
$file_type = $_FILES["file"]["type"];
$desired_dir = "uploads/news/";
$randomvalue = rand(1, 1000);
if ($newstitle != "" && $description !== "") {
if ($file_size < 20000000000) {
$newfilename = $randomvalue . $file_name;
move_uploaded_file($file_tmp, $desired_dir . $newfilename);
$file_name1 = $_FILES["fileToUpload"]["name"];
$file_size1 = $_FILES["fileToUpload"]["size"];
$file_tmp1 = $_FILES["fileToUpload"]["tmp_name"];
$file_type1 = $_FILES["fileToUpload"]["type"];
$desired_dir1 = "../pdf/";
$randomvalue1 = rand(1, 1000);
if ($newstitle != "" && $description !== "") {
if ($file_size1 < 20000000000000) {
$newbrochure = $randomvalue1 . $file_name1;
move_uploaded_file($file_tmp1, $desired_dir1 . $newbrochure);
#inserting news
$query = "insert into cms_news(title,image,description,brochure,created_date,last_updated) values('$newstitle','$newfilename','$description','$newbrochure',NOW(),NOW())";
firesql($query, 'res');
$_SESSION['opstatus'] = "success";
$_SESSION['message'] = "News Added Successfully";
go2("viewnews.php");
}
}
}
}
else
{
$_SESSION['opstatus']="error";
$_SESSION['message']="Failure";
go2("viewnews.php");
}
?>